Monday, 30 September 2013

Disable Security-Enhanced Linux

Security-Enhanced Linux (SELinux) is a Linux kernel security module that provides the mechanism for supporting access control security policies, including United States Department of Defense-style mandatory access controls (MAC).

In Fedora/Centos, SELinux is not useful and  make some softwares, services can't run. So we need disable it.

There are two way:

Temporary
setenforce 0

Forever
Edit vi /etc/selinux/config and reboot:
# This file controls the state of SELinux on the system.
# SELINUX= can take one of these three values:
#       enforcing - SELinux security policy is enforced.
#       permissive - SELinux prints warnings instead of enforcing.
#       disabled - SELinux is fully disabled.
SELINUX=disabled
# SELINUXTYPE= type of policy in use. Possible values are:
#       targeted - Only targeted network daemons are protected.
#       strict - Full SELinux protection.
# SELINUXTYPE=targeted












Posted by



at






















Labels:
,
,


















No comments:















Post a Comment
























        

      









Subscribe to:
Post Comments (Atom)